Course info

Rating

(44)

Level

Intermediate

Updated

Nov 3, 2016

Duration

2h 14m

Description

In this course, Web Application Penetration Testing with Burp Suite, you will learn hands-on techniques for attacking web applications and web services using the Burp Suite penetration testing tool. This course is designed to expand your knowledge of the Burp Suite beyond just capturing requests and responses. First, you'll learn about scoping your target application properly. Next, you'll spend some time scanning to trigger potential security vulnerabilities in your target, then digging deep into the results to validate your findings. Finally, you'll wrap up by leaning how to properly report your results to your audience. By the end this course, you'll know how to perform all of these techniques at a comfortable and efficient level to better perform your job as a pen tester.

About the author

Sunny Wear, CISSP, GWAPT, GSSP-JAVA, CEH, CSSLP is an Application Security Architect and developer. Her breadth of experience includes network, data, application, and security architecture as well as programming across multiple languages and platforms. In her 20 years of professional experience, she has participated in the design and creation of many enterprise applications as well as the security testing aspects of platforms and services.

More from the author

Section Introduction Transcripts

Course OverviewHello everyone. My name is Sunny Wear, and welcome to my course, Web Application Penetration Testing with Burp Suite. I am a security architect, as well as a web application penetration tester for a very large financial services company. Did you know that many pen testers today are only using a very small portion of the tools available in the Burp Suite product? This course is designed to expand your knowledge of Burp Suite beyond just capturing requests and responses. We will be attacking web applications through a hands-on approach using Burp's suite of modules as our pen testing tools of choice. Now some of the major topics we're going to cover include scoping our target application properly, spidering the scope, scanning to trigger potential security vulnerabilities in our target digging deep into the results to validate our findings, and then reporting those results to our audience. Now by the end of this course, you'll know how to perform all of these techniques at a comfortable and efficient level to better perform your job as a pen tester. Now before beginning this course, you should be familiar with web technologies and client server architecture concepts. I hope you'll join me on this journey to learn how to be a great web app pen tester with the web application penetration testing with Burp Suite course at Pluralsight.